Aikido
Start for Free
No CC required
Hub
/
Chapter 1

Chapter 1: Starting with Software Security Tools

Security tools are a mess. Dozens of acronyms, overlapping features, and plenty of buzzwords pretending to be categories. This chapter clears the fog and gives you a no-bullshit framework to understand how software security tools actually work—and how to group them in a way that makes sense to devs, not marketers. 

If you’re just getting started, this is where to start. No fluff. Just clarity.

Feel free to skip irrelevant sections, this is not a boring whitepaper.

Table of contents:
How all Security Tools Fit in the SDLC and DevSecOps Pipelines
Other Definitions and Categories
Cloud Security Posture Management (CSPM)
Application Security (ASPM)
Software Security (DevSecOps) for Beginners
Share:

Related links

Chapter 1: Starting with Software Security Tools

Software Security (DevSecOps) for Beginners
Application Security (ASPM)
Cloud Security Posture Management (CSPM)
Other Definitions and Categories
How all Security Tools Fit in the SDLC and DevSecOps Pipelines

Chapter 2: DevSecOps Tools Categories

Static Application Security Testing (SAST) - Static Code Analysis
Software Composition Analysis (SCA)
Dynamic Application Security Testing (DAST)
Secrets Detection
Software Bill of Materials (SBOM)
API Security
CI/CD Security
Infrastructure as Code (IaC) Scanners
Web Application Firewalls (WAF)
Cloud Security
Open Source License Scanners
Dependency Scanners
Container Security
Malware Detection

Chapter 3: Implementing software security tools the right way

How to choose the right tool for your organization
How to Introduce Security Tools Without Slowing Down Development
How to Implement Security Tools the Right Way
The End